Open n1c0z opened 6 years ago
It seems a non authenticated but existing user is redirected to the same route:
if (bcrypt.compareSync(password, hashPassword)) { req.session.user = JSON.stringify({ username, hashPassword }); //console.log('Login success') res.redirect("/login"); } else { console.log("Bad login"); res.redirect("/login"); }
It seems a non authenticated but existing user is redirected to the same route: